Swagger for Express and Node.js
This is a Swagger module for the Express web application framework for Node.js.
Try a sample! The source for a functional sample is available on github.
What's Swagger?
The goal of Swagger™ is to define a standard, language-agnostic interface to REST APIs which allows both humans and computers to discover and understand the capabilities of the service without access to source code, documentation, or through network traffic inspection. When properly defined via Swagger, a consumer can understand and interact with the remote service with a minimal amount of implementation logic. Similar to what interfaces have done for lower-level programming, Swagger removes the guesswork in calling the service.
Check out Swagger-Spec for additional information about the Swagger project, including additional libraries with support for other languages and more.
Installation
Using NPM, include the swagger-node-express
module in your package.json
dependencies.
{
...
"dependencies": {
"swagger-node-express": "~2.0",
...
}
}
Adding Swagger to an Express Application
var express = require("express")
, url = require("url")
, swagger = require("swagger-node-express");
var app = express();
app.use(express.json());
app.use(express.urlencoded());
swagger.setAppHandler(app);
You can optionally add a validator function, which is used to filter the swagger json and request operations:
swagger.addValidator(
function validate(req, path, httpMethod) {
if ("POST" == httpMethod || "DELETE" == httpMethod || "PUT" == httpMethod) {
var apiKey = req.headers["api_key"];
if (!apiKey) {
apiKey = url.parse(req.url,true).query["api_key"];
}
if ("special-key" == apiKey) {
return true;
}
return false;
}
return true;
}
);
You now add models to the swagger context. Models are described in a JSON format, per the swagger model specification. Most folks keep them in a separate file (see here for an example), or you can add them as such:
swagger.addModels(models);
Next, add some resources. Each resource contains a swagger spec as well as the action to execute when called. The spec contains enough to describe the method, and adding the resource will do the rest. For example:
var findById = {
'spec': {
"description" : "Operations about pets",
"path" : "/pet.{format}/{petId}",
"notes" : "Returns a pet based on ID",
"summary" : "Find pet by ID",
"method": "GET",
"parameters" : [swagger.pathParam("petId", "ID of pet that needs to be fetched", "string")],
"type" : "Pet",
"errorResponses" : [swagger.errors.invalid('id'), swagger.errors.notFound('pet')],
"nickname" : "getPetById"
},
'action': function (req,res) {
if (!req.params.petId) {
throw swagger.errors.invalid('id');
}
var id = parseInt(req.params.petId);
var pet = petData.getPetById(id);
if (pet) {
res.send(JSON.stringify(pet));
} else {
throw swagger.errors.notFound('pet');
}
}
};
swagger.addGet(findById);
Adds an API route to express and provides all the necessary information to swagger.
Finally, configure swagger with a public
URL and version (note, this must be called after all the other swagger API calls):
swagger.configure("http://petstore.swagger.wordnik.com", "0.1");
and the server can be started:
app.listen(8002);
Now you can open up a swagger-ui and browse your API, generate a client with swagger-codegen, and be happy.
Additional Configurations
.{format} suffix removal
If you don't like the .{format} or .json suffix, you can override this before configuring swagger:
swagger.configureSwaggerPaths("", "/api-docs", "");
That will put the resource listing under /api-docs
, and ditch the .{format}
on each of the apis you're adding to. Make sure to set the paths correctly in your spec configuration though, like such:
var findById = {
'spec': {
"description" : "Operations about pets",
"path" : "/pet/{petId}",
"notes" : "Returns a pet based on ID",
...
Mapping swagger to subpaths
To add a subpath to the api (i.e. list your REST api under /api
or /v1
), you can configure express as follows:
var app = express();
var subpath = express();
app.use(express.json());
app.use(express.urlencoded());
app.use("/v1", subpath);
swagger.setAppHandler(subpath);
Be sure to set your basePath
correctly to reflect this subpath:
swagger.configure("http://petstore.swagger.wordnik.com/v1", "0.1");
Now swagger and all apis configured through it will live under the /v1
path (i.e. /v1/api-docs
).
If you want to modify the default headers sent with every swagger-managed method, you can do so as follows:
swagger.setHeaders = function setHeaders(res) {
res.header("Access-Control-Allow-Headers", "Content-Type, X-API-KEY");
res.header("Content-Type", "application/json; charset=utf-8");
};
If you have a special name for an api key (such as X-API-KEY
, per above), this is where you can inject it.
Error handling
As of 2.1.0, swagger no longer consumes errors. The preferred way to handle errors
is to use standard express middelware with an arity of 4 I.E.
var app = express();
swagger.setAppHandler(app);
app.use(function(err, req, res, next){
});
Enabling cors support using cors library
To enable cors support using cors express npm module (https://npmjs.org/package/cors) add the following to your app.
var cors = require('cors');
var corsOptions = {
credentials: true,
origin: function(origin,callback) {
if(origin===undefined) {
callback(null,false);
} else {
var match = origin.match("^(.*)?.wordnik.com(\:[0-9]+)?");
var allowed = (match!==null && match.length > 0);
callback(null,allowed);
}
}
};
app.use(cors(corsOptions));
Configuring the Resource Listing Information
The Swagger info
node of the resource listing can be configured using the configureDeclaration
method:
swagger.configureDeclaration('pet', {
description: 'Operations about Pets',
authorizations : ["oauth2"],
protocols : ["http"],
consumes: ['application/json'],
produces: ['application/json']
});
License
Copyright 2014 Reverb Technologies, Inc.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.